Mid SOC Analyst
Agile Defense
Cyber SecurityDNSLinuxSMTPSplunkSQL
Director of Cybersecurity Operations
Saffire, LLC
full-time
Posted on:
Location Type: Remote
Location: Remote • Pennsylvania • 🇺🇸 United States
Visit company websiteJob Level
Lead
Tech Stack
AzureCloudCyber SecurityPHPPythonSQL
About the role
- Provide expertise, analytic capability and operational skill to manage the Legends ITS&C Security Operations team.
- Develop IT SecOps runbooks, playbooks, operational techniques & improvements for IT security controls with the team.
- Lead development of security monitoring, threat hunting and operating procedures at the application, system, tenant, and venue level, using a combination of on-premise, cloud and vendor-supplied technologies.
- Work with 3RD vendor teams to manage 24x7 SOC/NOC operations, including penetration testing efforts and the establishment of notification and escalation paths for triaged events.
- Lead incident response and trouble resolution on complex issues.
- Lead the development of relevant, useful cybersecurity operations KPIs to track and communicate performance, coverage, and contribute to an identification of risk.
- Work with the VP ITS&C to evaluate industry developments, new security requirements, and mature company security processes to meet all emerging threats and needs.
- Mentor & develop Security Operations team capabilities, providing training, guidance and Tier III resolution of complex security issues.
- Maintain awareness of trends and development opportunities within the information security arena, including new threats, defensive capabilities, and technology developments.
Requirements
- B.S. in Technology- or Business-related discipline, or equivalent experience
- Strong background and orientation with IT & cybersecurity requirements and internal controls
- 7-12+ years of experience within IT operations, cybersecurity or consulting functions, including familiarity with on-premises and cloud-based IT environments
- Familiarity with a variety of security platforms, including Bitdefender, Proofpoint, M365/Azure, Darktrace & others.
- Deep experience with scripting and coding languages such as PowerShell, Python, KQL, PHP & SQL
- Preference given to CISA/CRISC/CGEIT/CISSP/CISM & related/industry certifications, or willingness to pursue.
- Experience with managing cybersecurity requirements within IT and Data Privacy frameworks, such as NIST CSF, SOC(x), PCI-DSS and GDPR
- Demonstrated capability with developing IT communications to internal/external constituents and executive management teams.
- Proven ability to work constructively with IT, business and vendor personnel to provide input on improvements to cybersecurity toolsets and techniques.
- Solid organization and prioritization skills
- Personable approach and ability to work with remote IT company and venue personnel, contributing to a team environment with professionalism.
- Strong communication skills, both verbal and written
Benefits
- medical, dental, vision, life and disability insurance
- paid vacation
- 401k plan
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
scriptingPowerShellPythonKQLPHPSQLcybersecurity operationsincident responsesecurity monitoringthreat hunting
Soft skills
mentoringtrainingcommunicationorganizationprioritizationcollaborationproblem-solvingleadershipanalytical thinkinginterpersonal skills
Certifications
CISACRISCCGEITCISSPCISM
